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DETAILED ACTION 

1 . The text of those sections of Title 35,U.S.Code not included in this section can be 
found in the prior office action. 

2. The prior office actions are incorporated herein by reference. In particular, the 
observations with respect to claim language, and response to previously 
presented arguments. 

3. Claims 20, 21,31, 32, 34, 36, 38, 40, 44 and 46 have been amended. 

4. New claims 47-58 have been added. 

5. Claims 1-58 are pending. 

6. Examiner withdraws provisionally rejected claims 1-46 under 35 U.S.C. 101 as 
claiming the same invention as that of claims 1-22 of copending Application No. 
09/782, 593 due amendments made to the application number 09/782,593 
independent claims and applicant's arguments in the response dated 
05/16/2005. 

Response to Arguments 

7. Applicant's arguments with respect to the claims have been considered but are 
moot in view of the new ground(s) of rejection. 

• In response to applicant's argument that the references fail to show certain 
features of applicant's invention, it is noted that the features upon which applicant 
relies (i.e.,", ) are not recited in the rejected claim(s). Although the claims are 
interpreted in light of the specification, limitations from the specification are not 
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read into the claims. See In re Van Geuns, 988 F.2d 1181, 26 USPQ2d 1057 
(Fed. Cir. 1993). 

Double Patenting 



8. The nonstatutory double patenting rejection is based on a judicially created 
doctrine grounded in public policy (a policy reflected in the statute) so as to 
prevent the unjustified or improper timewise extension of the "right to exclude" 
granted by a patent and to prevent possible harassment by multiple assignees. 
See In re Goodman, 1 1 F.3d 1046, 29 USPQ2d 2010 (Fed. Cir. 1993); In re 
Longi, 759 F.2d 887, 225 USPQ 645 (Fed. Cir. 1985); In re Van Ornum, 686 
F.2d 937, 214 USPQ 761 (CCPA 1982); In re Vogel, 422 F.2d 438, 164 
USPQ 619 (CCPA 1970);and, In re Thorington, 418 F.2d 528, 163 USPQ 644 
(CCPA 1969). 

A timely filed terminal disclaimer in compliance with 37 CFR 1 .321 (c) may be 
used to overcome an actual or provisional rejection based on a nonstatutory 
double patenting ground provided the conflicting application or patent is shown to 
be commonly owned with this application. See 37 CFR 1 .130(b). 

Effective January 1 , 1 994, a registered attorney or agent of record may sign a 
terminal disclaimer. A terminal disclaimer signed by the assignee must fully 
comply with 37 CFR 3.73(b). 



9. Claims 1, 20, 38 and 47 provisionally rejected under the judicially created 

doctrine of obviousness-type double patenting as being unpatentable over claims 
1, 10, 16 and 23 of copending Application No. 10/248,629. Although the 
conflicting claims are not identical, they are not patentably distinct from each 
other because of the following reasons: 

• Claim 1 of instant application is obvious since it does not recite "by incorporating 
a nonce", "by using the nonce in combination with a previously shared encryption 
key to decrypt each of the data records", as recited in claim 1 of copending 
Application No. 09/782,593; further more the claim 1 of the instant application 
has an added limitation "in the second computer, transmitting session information 
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for encrypting and decrypting data records to a third computer". However it would 
have been obvious to one of ordinary skilled in the art to transmit session 
information to another computer for the purpose of backup or secure 
transmission of data records. 

• Claim 20 of instant application is obvious over claim 10 of copending Application 
No. 09/782,593; the claim 20 of the instant application has an added limitation " 
in the proxy server, transmitting session information including the previously 
shared encryption key for use in decrypting the plurality of data records to 
another server". However it would have been obvious to one of ordinary skilled in 
the art to transmit session information to another computer for the purpose of 
backup or secure transmission of data records. 

• Claim 38 of instant application is obvious over claim 1 6 of copending Application 
No. 09/782,593; the claim 38 of the instant application has an added limitation " a 
third computer coupled to the second computer and having a cache memory for 
storing at least the encryption key". However it would have been obvious to one 
of ordinary skilled in the art to transmit security information to another computer 
for the purpose of backup or secure transmission of data records. 

• Claim 47 of instant application is obvious since it does not recite "by 
incorporating a nonce", "by incorporating the nonce encrypted such that the 
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remote computer can decrypt each data records by using the nonce in 
combination with a previously shared encryption key", as recited in claim 23 of 
copending Application No. 09/782,593; "a first computer" in the instant 
application corresponds to co-pending application's "remote computer" further 
more the claim 47 of the instant application has an added limitation "transmitting 
session information for decrypting the encrypted data records to a second 
computer". However it would have been obvious to one of ordinary skilled in the 
art to transmit session information to another computer for the purpose of backup 
or secure transmission of data records. 

This is a provisional obviousness-type double patenting rejection because the 
conflicting claims have not in fact been patented. 

Claim Rejections - 35 USC § 102 

lO.CIaims 1-4, 10, 11, 12, 15, 16, 20, 24, 25, 27, 29, 34, 38, 39, 43, 45, 47, 48, 54, 

56 and 57 are rejected under 35 U.S.C. 102(e) as being anticipated by Fisher 
(6,216,229 B1). 



As per claims 1 and 47 Fisher (6,216,229 B1) teach a method and a system of 
transmitting data securely over a computer network (see abstract; fig.6), comprising the 
steps of: (1) establishing a communication path between a first computer and a second 
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computer (see fig.6, blocks 2010 and 2020); (2) encrypting and transmitting data 
records between the first computer and the second computer using an unreliable 
communication protocol, wherein each data record is encrypted without reference to a 
previously transmitted data record (see fig.6, block 2010); (3) in the second computer, 
receiving and decrypting the data records transmitted in step (2) without reference to a 
previously received data record (see fig.6, block 2020 and 2030; 2040); and (4) in the 
second computer, transmitting session information for encrypting and decrypting the 
data records to a third computer (see fig.1 where escrow agent represent the third 
computer that receives session information or shared secret). Also see col.4, lines 42- 
67;col.5-11 and col. 12, lines 1-39. 

As per claims 2 and 48 Fisher (6,216,229 B1) teach the method of claim 1, further 
comprising the step of, prior to step (1 ), establishing a reliable communication path 
between the first computer and the second computer and exchanging security 
credentials over the reliable communication path (see fig.4-6). 

As per claim 3 Fisher (6,21 6,229 B1 ) teach the method of claim 2, wherein the step of 
exchanging security credentials comprises the step of exchanging an encryption key 
that is used to encrypt the data records in step (2) (see fig.4-6). 

As per claim 4 Fisher (6,216,229 B1) teach the method of claim 2, wherein the session 
information includes at least a portion of the security credentials (see fig.4-6). 
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As per claims 10, 43 and 54 Fisher (6,216,229 B1) teach the method of claims 1 and 
38, wherein step (2) is performed by a proxy server that encrypts data records received 
from another server (see fig. 1-6). 

As per claims 11, 12 Fisher (6,216,229 B1) teach a system with number of terminals 
(see fig.1 ) and all limitations of the method of claim 1 including establishes a 
communication path with the first computer; and encrypts and transmits data records to 
the first computer using an unreliable communication protocol, wherein each data 
record is encrypted without reference to a previously transmitted data record and by 
employing the session information above. Col .4, lines 42-48 establish a communication 
path between all computers (terminal a-n of fig. 1 that corresponds to computer 1, 2, 3,4 
...,n). 

As per claims 15 and 56 Fisher (6,216,229 B1 ) teach the method of claim 1 , wherein 
the session information includes an encryption key that is used to encrypt data records 
in step (2) (see fig.4-6). 

As per claims 16 and 57 Fisher (6,216,229 B1) teach the method of claim 1, wherein 
the session information is stored by the third computer in a cache memory using a hash 
function (see fig.1 and 6; col.4, lines 43-67 and col.5, lines 1-7). 
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As per claims 20 and 27 Fisher (6,216,229 B1) teach a method of securely 
transmitting a plurality of data records between a client computer and a proxy server 
using an unreliable communication protocol, comprising the steps of: (1) establishing a 
reliable connection between the client computer and the proxy server; (2) exchanging 
encryption credentials between the client computer and the proxy server over the 
reliable connection; (3) generating a nonce for each of a plurality of data records, 
wherein each nonce comprises an initialization vector necessary to decrypt a 
corresponding one of the plurality of data records; (4) using the nonce to encrypt each 
of the plurality of data records and appending the nonce to each of the plurality of data 
records; (5) transmitting the plurality of data records encrypted in step (4) from the client 
computer to the proxy server using an unreliable communication protocol; (7) in the 
proxy server, decrypting each of the plurality of encrypted data records using a 
corresponding nonce extracted from each data record and a previously shared 
encryption key; and (8) in the proxy server, transmitting session information including 
the previously shared encryption key for use in decrypting the plurality of data records to 
another server (as applied to claim 1 above and where examiner considers any terminal 
to be a client computer or a server). 

As per claim 25 Fisher (6,216,229 B1 ) teach the method of claim 20, wherein step (6) 
is performed using an encryption key previously shared using a reliable communication 
protocol (see fig. 1-6). 
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As per claim 33 Fisher (6,21 6,229 B1 ) teach the method of claim 20, wherein the 
session information includes authentication information for a user of the client computer 
(see fig.6). 

As per claims 29 and 34 Fisher (6,216,229 B1) teach the method of claim 20, wherein 
the session information is stored by the other server in a cache memory using a hash 
function (see fig.6). 

As per claims 38 Fisher (6,216,229 B1) teach system for securely transmitting data 
using an unreliable protocol, comprising: a first computer comprising a communication 
protocol client function operable in conjunction with an application program to transmit 
data records securely using an unreliable protocol; and a second computer coupled to 
the first computer and comprising a communication protocol server function operable in 
conjunction with the communication protocol client function to receive data records 
securely using the unreliable communication protocol, wherein the communication 
protocol client function encrypts each data record using a nonce and an encryption key 
and appends the respective nonce to each of the encrypted data records; and wherein 
the communication protocol server function decrypts each of the data records using the 
respectively appended nonce and the encryption key; and a third computer coupled to 
the second computer and having a cache memory for storing at least the encryption key 
(as applied to claim 1 above). 
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As per claim 39 Fisher (6,21 6,229 B1 ) teach the system of claim 38, wherein the 
communication protocol client function exchanges encryption credentials with the 
communication protocol server function using a reliable communication protocol (see 
fig.1-6). 

As per claim 45 Fisher (6,216,229 B1) teach the system of claim 38, wherein the third 
computer is a proxy server that can receive encrypted records from the first computer; 
can decrypt records the received records using at least the encryption key stored in the 
cache memory; and can forward the decrypted records received from the first computer 
to a server computer (see fig. 6). 

Claim Rejections - 35 USC § 103 

1 1 .Claims 5-7, 22-23 and 49-51 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Fisher (6,21 6,229 B1 ) in view of Camp et al (6,31 7,729 B1 ). 

As per claims 5 and 49 Fisher (6,216,229 B1) teach all limitation of the claim as 
applied to the method of claim 1 , but do not explicitly disclose wherein step (2) of claim 
1 comprises the step of incorporating a nonce in each data record that is used by the 
second computer in combination with a previously shared encryption key to decrypt 
each of the data records in step (3) of claim 1 . However Camp et al. (6,31 7,729 B1 ) 
disclose wherein step (2) comprises the step of incorporating a nonce in each data 
record that is used by the second computer in combination with a previously shared 
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encryption key to decrypt each of the data records in step (3) (see abstract; col.4, table 
1 where a message between the tow party is being described; col .4-5, table 2 where the 
field in the message that is being transmitted between two party such as computer a 
and b being describe a nonce, random numbers chall-m and chall-c that corresponds to 
keys used for encryption or decryption; also see col.7-1 1 ). It would have been obvious 
to one of ordinary skilled in the art at the time the invention was made to utilize Camp's 
nonce and key utilize in SET in Fisher's record in order to offers multiple protocols for 
electronic commerce which reflect different types of Internet access available. 

As per claims 6, 22, 23 and 50 Fisher (6,21 6,229 B1 ) teach all limitation of the claim 
as applied to the method of claims 5 and 20 above, but do not explicitly disclose, 
wherein the nonce comprises a random number; unique number. However Camp et al. 
(6,317,729 B1) disclose wherein the nonce comprises a random number (see col.4, 
table 2, second variable and therefore it is a unique number since it has a random 
value). It would have been obvious to one of ordinary skilled in the art at the time the 
invention was made to utilize Camp's nonce and key utilize in SET in Fisher's record in 
order to offers multiple protocols for electronic commerce which reflect different types of 
Internet access available. 

As per claims 7 and 51 Fisher (6,216,229 B1) teach all limitation of the claim as 
applied to the method of claim 5 above, but do not explicitly disclose, further comprising 
the step of, in the second computer, verifying that the nonce has not previously been 
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received in a previously transmitted data record. However Camp et al. (6,317,729 B1) 
disclose , further comprising the step of, in the second computer, verifying that the 
nonce has not previously been received in a previously transmitted data record (see 
col.7-1 1 ). It would have been obvious to one of ordinary skilled in the art at the time the 
invention was made to utilize Camp's nonce and key utilize in SET in Fisher's record in 
order to offers multiple protocols for electronic commerce which reflect different types of 
Internet access available. 

12.Claims 9, 13, 14, 17, 18, 19, 24, 26, 31, 32, 35, 36, 37, 40, 42, 53, 55 and 58 are 

rejected under 35 U.S.C. 103(a) as being unpatentable over Fisher (6,216,229 
B1 ) in view of Applicant Admittance of Prior Art (AAPA). 

As per claims 9, 13, 14, 24, 26, 31, 32, 40, 41, 42, 53 and 55 Fisher (6,216,229 B1 ) 
teach all limitations of the claim but do not expressly disclose, wherein step (1) is 
performed using the Transmission Control Protocol, and wherein step (2) is performed 
using the User Datagram Protocol; wherein the session information is SSL or TLS 
session information/session identifier; wherein step (1) is performed using Transmission 
Control Protocol, and wherein step (5) is performed using User Datagram Protocol; 
wherein the reliable communication protocol is Transmission Control Protocol; are 
compatible with the SOCKS communication. However AAPA disclose all above 
limitations on pages 1-8 and page 9, lines 1-20 of the specification as f prior art. The 
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motivation for an ordinary skilled in the art to utilize the above limitations in Fisher's 
method also is disclosed on pages 1-8 and page 9, lines 1-20 of the specification. 

As per claims 17 and 35 Fisher (6,216,229 B1) teach all limitations of the claim 
including the hash function as applied to claims 1 and 20 above but do not expressly 
disclose, wherein the hash function is the BUZhash function. However AAPA disclose 
all above limitations on page 29, lines 19-29 and page 30, lines 1-9 of the specification 
as prior art. The motivation for an ordinary skilled in the art to utilize the above 
limitations in Fisher's method also is disclosed on pages 30, lines 1-9 of the 
specification. 
1. 

As per claims 18, 19, 36, 37 and 58 Fisher (6,216,229 B1) teach all limitation of the 
claim including transmission of session information between the computers as applied 
to the method of claims, 1 , 11, 12 and 20 but do not expressly disclose using multicast 
communication; or negative acknowledgment multicast communication. However AAPA 
disclose all above limitations on page 34, lines 27-29 and page 35, lines 1-15 of the 
specification as prior art. The motivation for an ordinary skilled in the art to utilize the 
above limitations in Fisher's method also is disclosed on pages 35, lines 10-13 of the 
specification. 



Allowable Subject Matter 
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13. Claims 8, 21, 28, 30, 44 and 46 is objected to as being dependent upon a 
rejected base claim, but would be allowable if rewritten in independent form 
including all of the limitations of the base claim and any intervening claims. 



14. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Kambiz Zand whose telephone number is (571) 
272-381 1 . The examiner can normally reached on Monday-Thursday (8:00-5:00). 
If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron can be reached on (571) 272-3799. The fax phone 
numbers for the organization where this application or proceeding is assigned as 
(571) 273-8300. Information regarding the status of an application may be 
obtained from the Patent Application Information Retrieval (PAIR) system. Status 
information for published applications may be obtained from either Private PAIR 
or Public PAIR. Status information for unpublished applications is available 
through Private PAIR only. For more information about the PAIR system, see 
http://pair-direct.uspto.gov. Should you have questions on access to the Private 
PAIR system, contact the Electronic Business Center (EBC) at 866-217-9197 



Conclusion 



(toll-free). 




Kambiz Zand 



